Can't figure out how to get my LAN routing
-
Hi. My setup is currently a Netgear 24 port gig switch that everything plugs into, using 10.0.0.0/24. My pfSense LAN port is 10.0.0.1. I have DHCP giving out that IP as the gateway. Everyone can ping it, everyone can get out on the net. happy happy.
I just picked up a Catalyst 3750 48 port switch. I want to swap the Netgear out for it. So I'm working on getting it configured. I have a bunch of VLANs setup to organize my network. I have routing working between the networks, DHCP is giving out the right addys for each subnet, all good. So now I need to get the internet working.
I setup VLAN 100 for internet (10.0.200.1/24). I assigned a new interface LAN3750 with IP 10.0.200.2/24. I have LAN connected to the Netgear (to keep my environment connected while I'm working on this) and the LAN3750 plugged into the VLAN100 port on the Cisco. From the Cisco I can ping 10.0.200.2 and it replies. However, from the PF I cannot ping anything except the gateway, 10.0.200.1.
At one point I got frustrated and thought maybe it's because I'm on something other than LAN so I unplugged the LAN3750 interface, removed its IP and disabled it. I then changed LAN to 10.0.200.2 and plugged it into the 3750. Again, I can ping 10.0.200.1 from pfSense and I can ping 200.2 from the Cisco but pf can't ping anything else on the network. I tried to ping 10.0.10.3 and nada, yet my machine at 10.0.0.3 can ping 10.0.10.3.
I made an ACL for VLAN100 that basically opens the floodgates (permit ip any any) to be sure it wasn't an ACL issue but still no love. Everything else seems to work on the Cisco, it's just pfSense that doesn't want to play ball. It's really confusing to me that I I can ping in to the pf, but not out. Workstations on my LAN can't ping 200.2 either.
Any idea what I should be looking at to try to figure this out?
Thanks!